CVE-2025-5419: Google Chromium V8 Out-of-Bounds Read and Write

Google Chromium V8 Out-of-Bounds Read and Write Vulnerability. Google Chromium V8 contains an out-of-bounds read and write vulnerability that could allow a remote attacker to potentially exploit heap corruption via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google Chrome, Microsoft Edge, and Opera.

• CISA KEV-listed (remediation due 2025-06-26)
• EPSS 3.8% (88.4% percentile)

Related briefings

• Google Patches Two Chrome Zero-Days Exploited in the Wild — Skia and V8 Under Active Attack 2026-03-15

Browse the CVE database

Read the full analysis on IntelFusions